CLSA-2026-1776430866

See a problem?

Import Source

https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1776430866.json

JSON Data

https://api.osv.dev/v1/vulns/CLSA-2026-1776430866

Upstream

CVE-2022-44840

CVE-2022-45703

CVE-2022-47673

CVE-2022-47696

CVE-2023-25584

Published

2026-04-17T17:28:13Z

Modified

2026-06-01T00:32:48.414012945Z

Summary

binutils: Fix of 5 CVEs

Details

CVE-2022-44840: fix heap buffer overflow in findsectionin_set in dwarf.c
CVE-2023-25584: fix lack of bounds checking in vms-alpha.c parse_module
CVE-2022-47673: fix OOB reads in parse_module
CVE-2022-47696: fix uninitialised the_bfd field in mach-o.c synthetic symbols
CVE-2022-45703: fix heap buffer overflow in displaygdbindex in dwarf.c

References

https://errata.tuxcare.com/els_os/tuxcare9.6esu/CLSA-2026-1776430866.html

Affected packages

TuxCare:AlmaLinux:9.6

binutils

Package

Name: binutils
Purl: pkg:rpm/tuxcare/binutils?distro=almalinux-9.6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.35.2-63.el9.tuxcare.els7

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1776430866.json"

binutils-devel

Package

Name: binutils-devel
Purl: pkg:rpm/tuxcare/binutils-devel?distro=almalinux-9.6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.35.2-63.el9.tuxcare.els7

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1776430866.json"

binutils-gold

Package

Name: binutils-gold
Purl: pkg:rpm/tuxcare/binutils-gold?distro=almalinux-9.6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.35.2-63.el9.tuxcare.els7

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1776430866.json"

cross-binutils-aarch64

Package

Name: cross-binutils-aarch64
Purl: pkg:rpm/tuxcare/cross-binutils-aarch64?distro=almalinux-9.6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.35.2-63.el9.tuxcare.els7

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1776430866.json"

cross-binutils-ppc64le

Package

Name: cross-binutils-ppc64le
Purl: pkg:rpm/tuxcare/cross-binutils-ppc64le?distro=almalinux-9.6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.35.2-63.el9.tuxcare.els7

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1776430866.json"

cross-binutils-s390x

Package

Name: cross-binutils-s390x
Purl: pkg:rpm/tuxcare/cross-binutils-s390x?distro=almalinux-9.6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.35.2-63.el9.tuxcare.els7

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1776430866.json"